Skip to content

WebSockets

Cloudflare supports proxied WebSocket connections without additional configuration.

Background

WebSockets are open connections sustained between the client and the origin server. Inside a WebSockets connection, the client and the origin can pass data back and forth without having to reestablish sessions. This makes exchanging data within a WebSockets connection fast. WebSockets are often used for real-time applications such as live chat and gaming.

Enable WebSockets

To enable WebSockets connections to your origin server in the dashboard:

  1. Log in to your Cloudflare account and go to a specific domain.
  2. Go to Network.
  3. For WebSockets, switch the toggle to On.

Compatibility notes

ProductCompatibleNotes
SSLYes
WAFYes*The initial HTTP 101 request is subject to WAF managed rules, custom rules, rate limiting rules, and other WAF features like any other WebSockets connection. However, once a connection has been established, the WAF does not perform any further inspections.
WorkersYesYou can also use Durable Objects as an endpoint for WebSocket sessions, giving you full control over messages sent to and from clients.

Availability

WebSockets are supported on all Cloudflare plans.

Requests and Bandwidth measurement

Given the nature of WebSocket connections, you may notice they differ from typical HTTP traffic in terms of requests and bandwidth usage. If you are an Enterprise customer, it is important to consider how Cloudflare measures requests and bandwidth to accurately estimate your usage.

Cloudflare measures a single WebSocket connection in the following way:

  • Requests: Cloudflare recognizes only the initial upgrade request per WebSocket connection as an HTTP request. Even though you can send a bidirectional message stream through the established WebSocket connection, it will be counted as a single long-lived HTTP request.

  • Bandwidth: Cloudflare measures data transfer sent from Cloudflare to the client. This typically means that messages from the WebSocket server behind Cloudflare to the WebSocket client are counted towards bandwidth usage.

Once a WebSocket connection is closed, you can view your aggregated WebSocket usage through Traffic Analytics, the GraphQL Analytics API, and HTTP requests logs.

Technical note

When Cloudflare releases new code to its global network, we may restart servers, which terminates WebSockets connections.

Best practises

  • Implement a keepalive.
  • Review and then remove or extend timeout settings on the origin and/or on the client.

Troubleshooting

Investigating issues with Websocket can be facilitated with client tools like wscat. Being able to reproduce an issue on a single URL with a minimalistic tool helps narrowing down the issue.

The EdgeStartTimestamp and EdgeStopTimestamp fields in HTTP requests logs represent the duration of the WebSocket connection (they do not represent the initial HTTP connection).